Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government 6,280 people reacted Rare Backdoors Suspected to be Tied to Gelsemium APT Found in Targeted Attack in Southeast Asian Government By Lior Rochberger, Tom Fakterman and Robert Falcone September 22, 2023 at 6:05 AM 27 8 min. read
Cyberespionage Attacks Against Southeast Asian Government Linked to Stately Taurus, Aka Mustang Panda 7,425 people reacted Cyberespionage Attacks Against Southeast Asian Government Linked to Stately Taurus, Aka Mustang Panda By Lior Rochberger, Tom Fakterman and Robert Falcone September 22, 2023 at 6:03 AM 19 12 min. read
Persistent Attempts at Cyberespionage Against Southeast Asian Government Target Have Links to Alloy Taurus 3,843 people reacted Persistent Attempts at Cyberespionage Against Southeast Asian Government Target Have Links to Alloy Taurus By Lior Rochberger, Tom Fakterman and Robert Falcone September 22, 2023 at 6:02 AM 5 13 min. read
Unit 42 Researchers Discover Multiple Espionage Operations Targeting Southeast Asian Government 5,789 people reacted Unit 42 Researchers Discover Multiple Espionage Operations Targeting Southeast Asian Government By Lior Rochberger, Tom Fakterman and Robert Falcone September 22, 2023 at 6:00 AM 16 6 min. read
Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT 11,103 people reacted Fake CVE-2023-40477 Proof of Concept Leads to VenomRAT By Robert Falcone September 19, 2023 at 6:00 AM 13 10 min. read
Threat Brief: 3CXDesktopApp Supply Chain Attack (Updated) 79,941 people reacted Threat Brief: 3CXDesktopApp Supply Chain Attack (Updated) By Robert Falcone and Josh Grunzweig March 30, 2023 at 12:50 PM 29 8 min. read
Threat Brief: OWASSRF Vulnerability Exploitation 65,343 people reacted Threat Brief: OWASSRF Vulnerability Exploitation By Robert Falcone and Lior Rochberger December 22, 2022 at 5:30 PM 15 9 min. read
CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) 108,730 people reacted CVE-2022-22965: Spring Core Remote Code Execution Vulnerability Exploited In the Wild (SpringShell) (Updated) By Haozhe Zhang, Ken Hsu, Tao Yan, Qi Deng and Robert Falcone March 31, 2022 at 4:30 PM 89 12 min. read
Threat Brief: Ongoing Russia and Ukraine Cyber Activity 87,611 people reacted Threat Brief: Ongoing Russia and Ukraine Cyber Activity By Robert Falcone, Mike Harbison and Josh Grunzweig January 20, 2022 at 12:30 PM 55 8 min. read
Another Apache Log4j Vulnerability Is Actively Exploited in the Wild (CVE-2021-44228) (Updated) 314,276 people reacted Another Apache Log4j Vulnerability Is Actively Exploited in the Wild (CVE-2021-44228) (Updated) By Tao Yan, Qi Deng, Haozhe Zhang, Yu Fu, Josh Grunzweig, Mike Harbison and Robert Falcone December 10, 2021 at 1:00 PM 474 15 min. read
APT Expands Attack on ManageEngine With Active Campaign Against ServiceDesk Plus 63,968 people reacted APT Expands Attack on ManageEngine With Active Campaign Against ServiceDesk Plus By Robert Falcone and Peter Renals December 2, 2021 at 6:00 AM 19 10 min. read
Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer 115,305 people reacted Targeted Attack Campaign Against ManageEngine ADSelfService Plus Delivers Godzilla Webshells, NGLite Trojan and KdcSponge Stealer By Robert Falcone, Jeff White and Peter Renals November 7, 2021 at 6:00 PM 70 18 min. read
Mespinoza Ransomware Gang Calls Victims “Partners,” Attacks with Gasket, "MagicSocks" Tools 54,922 people reacted Mespinoza Ransomware Gang Calls Victims “Partners,” Attacks with Gasket, "MagicSocks" Tools By Robert Falcone, Alex Hinchliffe and Quinn Cooke July 15, 2021 at 3:00 AM 23 23 min. read
New Shameless Commodity Cryptocurrency Stealer (WeSteal) and Commodity RAT (WeControl) 50,415 people reacted New Shameless Commodity Cryptocurrency Stealer (WeSteal) and Commodity RAT (WeControl) By Robert Falcone and Simon Conant April 29, 2021 at 12:01 AM 35 9 min. read
Actor Exploits Microsoft Exchange Server Vulnerabilities, Cortex XDR Blocks Harvesting of Credentials 45,473 people reacted Actor Exploits Microsoft Exchange Server Vulnerabilities, Cortex XDR Blocks Harvesting of Credentials By Robert Falcone April 15, 2021 at 6:00 AM 26 8 min. read